We look at how organized cybercrime groups are formed and structured and how cybercriminals first connect online through hacking forums and dark web marketplaces, where they build reputations and specialize in roles like penetration testing, malware development, ransomware operations and money laundering. Over time, trusted partnerships and ad hoc "crews" emerge, which can formalize into defined criminal enterprises.
We look at the fully undetectable (FUD) cryptography and encryption market which is frequently used by cybercriminals to enable malware to evade common endpoint solutions and antiviruses.
Ransomware gangs often go underground, only to resurface later, more formidable than before. Explore five reasons behind this dormancy, from evading law enforcement to upgrading attack techniques and adapting to market dynamics.
Our ransomware roundup Q1 2024 broke new records with 192 publicly disclosed ransomware attacks, an increase of 48% over 2023.
An allow list enables organizations to streamline the processing of defined scripts, IP's, domains or applications, effectively bypassing many of the predefined rules on the agent.
Using a virtual CISO solution gives you access to the expertise you need, without the time and expense needed to recruit a full time chief information security officer.
BlackFog offers data retention to monitor dwell time across the threat landscape and audit and regulatory control purposes.
ADX (Anti Data Exfiltration) is a technique used to prevent unauthorized data from leaving a device.
Breach monitoring constantly inspects data exfiltration from a device and validates whether it is legitimate or a threat.
BlackFog’s unique Threat Hunting module provides detailed insights into each identified threat, enabling organizations to stay ahead of cybercriminals.
